Supporting Programme 2019
Mimecast - Post Breach Threat Intelligence vs Human Error
With attacks on the rise, organizations are looking for ways to act upon an incident with minimal expense. This includes reducing operational allocation in responding to incidents, while decreasing data loss and potential negative impact on the brand. Moreover, most of the organizations believe consuming feeds of IoCs to detect threats would reduce the attacks and prevent potential harm. Unfortunately, this is not a well-laid out plan given that an attacker only needs to adapt their TTPs and IoCs to subvert traditional methods of threat intelligence. This risk will always persist unless fundamental vulnerabilities are totally revealed and patched rather than concealed by temporary solutions. Therefore, this approach creates problems especially when the organization is at high risk of human error.
In this session, we will give an overview the consequences of organizational and common user behaviours and how they relate to overall risk. We will further discuss how curbing this risk reduces the overall threat surface.
Understanding risk allows us to apply counter-intel tactics to close holes in our infrastructure that post breach threat intelligence cannot surface by itself.
--- Date: 10.10.2019 Time: 12:00 - 12:15 Location: Forum 11.0